Portworx Essentials on OKD 4.15/Fedora CoreOS

Enhancement Requests
1

Continuing the discussion from Portworx Essentials/Enterprise on OKD 4.x/Fedora CoreOS:

Hi! I’m trying to install Portworx Essentials 24.1.0 on OKD 4.15.
I used this spec:

spec:
image: portworx/oci-monitor:3.1.2
imagePullPolicy: Always
kvdb:
internal: true
storage:
devices:
- /dev/sdc
kvdbDevice: /dev/sdb
nodes:

  • selector:
    labelSelector:
    matchLabels:
    px/storage: “sdc”
    px/metadata-node: “true”
    placement:
    nodeAffinity:
    requiredDuringSchedulingIgnoredDuringExecution:
    nodeSelectorTerms:
    - matchExpressions:
    - key: px/enabled
    operator: NotIn
    values:
    - “false”
    - key: node-role.kubernetes.io/control-plane
    operator: DoesNotExist
    secretsProvider: k8s
    startPort: 17001
    stork:
    enabled: true
    args:
    webhook-controller: “true”
    autopilot:
    enabled: true
    csi:
    enabled: true
    monitoring:
    telemetry:
    enabled: false
    prometheus:
    exportMetrics: true

After creating storagecluster I get this error:

Jul 09 16:31:16 infra-01.ocp4.policlinico.org systemd[1]: Started portworx.service - Portworx OCI Container.
Jul 09 16:31:16 infra-01.ocp4.policlinico.org (px-runc)[22111]: portworx.service: Failed to locate executable /var/opt/pwx/bin/px-runc: Permission denied
Jul 09 16:31:16 infra-01.ocp4.policlinico.org (px-runc)[22111]: portworx.service: Failed at step EXEC spawning /var/opt/pwx/bin/px-runc: Permission denied
Jul 09 16:31:16 infra-01.ocp4.policlinico.org systemd[1]: portworx.service: Main process exited, code=exited, status=203/EXEC
Jul 09 16:31:16 infra-01.ocp4.policlinico.org systemd[1]: portworx.service: Failed with result ‘exit-code’.
Jul 09 16:31:21 infra-01.ocp4.policlinico.org systemd[1]: portworx.service: Scheduled restart job, restart counter is at 319.
Jul 09 16:31:21 infra-01.ocp4.policlinico.org systemd[1]: Starting portworx.service - Portworx OCI Container…
Jul 09 16:31:21 infra-01.ocp4.policlinico.org (runc)[22157]: portworx.service: Executable /var/opt/pwx/bin/runc missing, skipping: Permission denied
Jul 09 16:31:21 infra-01.ocp4.policlinico.org systemd[1]: Started portworx.service - Portworx OCI Container.
Jul 09 16:31:21 infra-01.ocp4.policlinico.org (px-runc)[22158]: portworx.service: Failed to locate executable /var/opt/pwx/bin/px-runc: Permission denied
Jul 09 16:31:21 infra-01.ocp4.policlinico.org (px-runc)[22158]: portworx.service: Failed at step EXEC spawning /var/opt/pwx/bin/px-runc: Permission denied
Jul 09 16:31:21 infra-01.ocp4.policlinico.org systemd[1]: portworx.service: Main process exited, code=exited, status=203/EXEC

Thanks in advance for your support.

2

Hi! I just resolved this issue applying this workaround:

On every storage node (CoreOS):

$ sudo chcon -t bin_t /var/opt/pwx/bin/runc
$ sudo chcon -t bin_t /var/opt/pwx/bin/px-runc

Bye